Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
File: nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft (raw, json)
Hash identifier: NUogxtJkixbdZNk4HtnseLmgS3uZlsrF4QrQ5GtQ7ic=
Subject key identifier: 3D:D7:33:39:22:65:CF:D0:CD:D2:04:5B:78:CA:29:43:9C:DA:50:4F
Authority key identifier: 9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
Certificate issuer: /CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Certificate serial: 019E1D903B7BB7A0A74533DB14E18D0B1229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
Manifest number: 1528
Signing time: Tue 12 May 2026 19:00:52 +0000
Manifest this update: Tue 12 May 2026 19:00:52 +0000
Manifest next update: Wed 13 May 2026 19:00:52 +0000
Files and hashes: 1: _3hDeG2_gP2OF_kOwQ_-RVY6AGk.roa (hash: MhtbxEEzpA8s8MGWNiwEnIVTeslC4E8X2PXN0HorBxY=)
2: nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl (hash: 7/lzn9l65wr6rScnemfNnJr35vykEqwRN4+7Z5PmLto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:3b:7b:b7:a0:a7:45:33:db:14:e1:8d:0b:12:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Validity
Not Before: May 12 19:00:52 2026 GMT
Not After : May 13 19:00:52 2026 GMT
Subject: CN=3dd733392265cfd0cdd2045b78ca29439cda504f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:08:14:78:fa:8d:a8:5b:c5:62:0f:c4:36:
c3:3f:be:b8:5c:2a:2e:32:0b:ae:25:fb:0c:4d:20:
30:4e:05:18:7e:43:6b:29:39:2e:5a:0b:2e:ba:0d:
e3:4c:ab:cf:b6:b9:54:d1:8b:dd:d9:a3:53:14:55:
76:b1:1e:e8:9f:5a:13:2c:b6:77:5b:47:03:ec:e8:
d1:9d:9e:51:93:f1:d6:fe:3b:cf:86:af:b8:3b:e8:
d0:09:b3:bb:89:e3:f0:96:a0:4e:90:4f:12:2d:69:
63:3b:1b:7b:07:ab:a8:6f:76:95:d1:d1:61:18:6d:
9b:a6:e0:86:15:ea:bf:42:92:15:5b:0c:24:ea:b8:
49:58:12:70:fb:7a:45:50:e2:f2:f8:23:44:c0:d8:
3d:53:2c:fe:04:08:6e:5a:21:5c:ac:26:0d:bf:e4:
4f:cd:2b:55:fe:04:bc:0d:d9:ed:e4:e5:fd:cd:f9:
dc:e3:d4:f9:06:79:de:f7:0f:f0:40:54:28:fd:3f:
4a:dd:86:63:68:5e:9d:fc:61:54:4c:96:61:de:fe:
0c:b6:7d:10:24:36:26:91:1d:7e:2b:b9:f6:f3:5e:
a8:71:1e:44:1a:b3:d5:2b:e5:5d:2f:5e:c6:3b:15:
fb:cf:f0:88:8c:33:41:cd:4b:9d:7c:24:a2:79:e9:
fc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D7:33:39:22:65:CF:D0:CD:D2:04:5B:78:CA:29:43:9C:DA:50:4F
X509v3 Authority Key Identifier:
keyid:9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:0e:79:ec:8c:ef:c8:d3:c0:03:b0:be:09:a9:ca:28:e5:0f:
4b:b4:76:ff:89:82:48:36:37:a4:b2:0a:9c:15:3f:bd:02:79:
ea:91:69:d1:74:6d:c8:18:be:09:1b:88:fa:77:1c:bc:e8:06:
3e:f7:b5:0c:c3:56:b7:ff:12:c2:aa:69:34:c0:bc:dc:f5:1f:
81:34:d0:9a:0e:98:26:e9:1d:2b:d4:c1:53:fe:0e:0f:07:fc:
a2:c6:25:77:ca:f0:27:2a:03:68:db:40:d3:a3:c2:89:a7:8f:
32:f9:12:9e:7a:72:63:82:d3:89:7e:cb:b5:43:f1:a7:98:1a:
47:8c:77:4a:dd:14:a1:29:79:00:18:00:58:03:f3:0d:c1:99:
6d:9a:e3:1c:e3:e2:90:af:00:cf:11:a4:88:5a:9f:6c:df:d0:
8a:4a:5a:8a:db:25:2c:d2:7c:de:c6:1d:69:b2:38:b2:b6:13:
9b:84:6e:55:f5:8b:bc:64:ee:6a:84:1b:fa:c6:4e:2c:56:51:
be:cd:52:85:1e:03:9b:6c:00:1d:23:66:a0:33:6c:82:c2:0d:
0e:72:ce:1c:56:21:de:a1:a8:e4:65:df:f1:89:cf:52:92:21:
9b:cf:4f:3d:aa:81:5e:eb:f0:22:90:4e:cb:85:1c:2c:bd:c8:
83:98:46:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:30:18 2026 by rpki-client